CVE-2024-52541

Name: CVE-2024-52541
Creator: NVD / NIST
Published: 2025-02-19T17:15:14.633+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

HIGHCVSS 8.2/10EPSS 0.16%

Last modified Jun 17, 2026

CVE-2024-52541 is a high-severity vulnerability rated 8.2/10 on the CVSS scale. Dell Client Platform BIOS contains a Weak Authentication vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of Privileges.. EPSS estimates a 0.16% chance of exploitation in the next 30 days.

Description

Dell Client Platform BIOS contains a Weak Authentication vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of Privileges.

Metrics

CVSS 3.1

8.2/10

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

EPSS Probability

0.16%

5.1th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-1390

Affected Software

Vendor	Product	Versions
Dell	Alienware M15 R6 Firmware	< 1.34.0
Dell	Alienware M15 R7 Firmware	< 1.28.0
Dell	Alienware M16 R1 Firmware	< 1.21.0
Dell	Alienware M16 R2 Firmware	< 1.8.0
Dell	Alienware M18 R1 Firmware	< 1.21.0
Dell	Latitude 5300 2-In-1 Firmware	< 1.33.1
Dell	Latitude 5310 Firmware	< 1.26.1
Dell	Latitude 5310 2-In-1 Firmware	< 1.26.1
Dell	Latitude 5320 Firmware	< 1.40.0
Dell	Latitude 5330 Firmware	< 1.25.0
Dell	Latitude 5340 Firmware	< 1.16.0
Dell	Latitude 5350 Firmware	< 1.8.0
Dell	Latitude 5400 Firmware	< 1.35.0
Dell	Latitude 5401 Firmware	< 1.36.0
Dell	Latitude 5410 Firmware	< 1.33.0
Dell	Latitude 5411 Firmware	< 1.34.0
Dell	Latitude 5420 Firmware	< 1.41.0
Dell	Latitude 5420 Rugged Firmware	< 1.35.0
Dell	Latitude 5421 Firmware	< 1.35.0
Dell	Latitude 5424 Rugged Firmware	< 1.35.0
Dell	Latitude 5430 Firmware	< 1.25.0
Dell	Latitude 5430 Rugged Laptop Firmware	< 1.31.2
Dell	Latitude 5431 Firmware	< 1.25.0
Dell	Latitude 5440 Firmware	< 1.18.1
Dell	Latitude 5450 Firmware	< 1.8.0
Dell	Latitude 5480 Firmware	< 1.39.0
Dell	Latitude 5488 Firmware	< 1.39.0
Dell	Latitude 5490 Firmware	< 1.38.0
Dell	Latitude 5491 Firmware	< 1.36.0
Dell	Latitude 5495 Firmware	< 1.17.0
Dell	Latitude 5500 Firmware	< 1.35.0
Dell	Latitude 5501 Firmware	< 1.36.0
Dell	Latitude 5510 Firmware	< 1.33.0
Dell	Latitude 5511 Firmware	< 1.34.0
Dell	Latitude 5520 Firmware	< 1.40.0
Dell	Latitude 5521 Firmware	< 1.34.0
Dell	Latitude 5530 Firmware	< 1.25.0
Dell	Latitude 5531 Firmware	< 1.26.0
Dell	Latitude 5540 Firmware	< 1.16.0
Dell	Latitude 5550 Firmware	< 1.8.0
Dell	Latitude 5580 Firmware	< 1.39.0
Dell	Latitude 5590 Firmware	< 1.38.0
Dell	Latitude 5591 Firmware	< 1.36.0
Dell	Latitude 7030 Rugged Extreme Firmware	< 1.10.0
Dell	Latitude 7200 2-In-1 Firmware	< 1.33.1
Dell	Alienware M18 R2 Firmware	< 1.9.0
Dell	Alienware X14 R2 Firmware	< 1.17.0
Dell	Alienware X16 R1 Firmware	< 1.17.0
Dell	Alienware X16 R2 Firmware	< 1.7.0
Dell	Chengming 3900 Firmware	< 1.26.0

Showing 50 of 392 affected configurations. See NVD for the full list.

References

https://www.dell.com/support/kbdoc/en-us/000258429/dsa-2025-021Vendor Advisory

Timeline

Published: Feb 19, 2025
Last Modified: Jun 17, 2026
Status: Analyzed

Frequently Asked Questions

What is CVE-2024-52541?

Dell Client Platform BIOS contains a Weak Authentication vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of Privileges.

How severe is CVE-2024-52541?

CVE-2024-52541 has a CVSS score of 8.2/10 (HIGH severity). The EPSS model estimates a 0.16% probability of exploitation in the next 30 days.

How do I fix CVE-2024-52541?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2024-52541?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST